[El-errata] ELSA-2024-3754 Important: Oracle Linux 9 ipa security update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Tue Jun 11 15:52:16 UTC 2024
Oracle Linux Security Advisory ELSA-2024-3754
http://linux.oracle.com/errata/ELSA-2024-3754.html
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:
x86_64:
ipa-client-4.11.0-15.0.1.el9_4.x86_64.rpm
ipa-client-common-4.11.0-15.0.1.el9_4.noarch.rpm
ipa-client-epn-4.11.0-15.0.1.el9_4.x86_64.rpm
ipa-client-samba-4.11.0-15.0.1.el9_4.x86_64.rpm
ipa-common-4.11.0-15.0.1.el9_4.noarch.rpm
ipa-selinux-4.11.0-15.0.1.el9_4.noarch.rpm
ipa-server-4.11.0-15.0.1.el9_4.x86_64.rpm
ipa-server-common-4.11.0-15.0.1.el9_4.noarch.rpm
ipa-server-dns-4.11.0-15.0.1.el9_4.noarch.rpm
ipa-server-trust-ad-4.11.0-15.0.1.el9_4.x86_64.rpm
python3-ipaclient-4.11.0-15.0.1.el9_4.noarch.rpm
python3-ipalib-4.11.0-15.0.1.el9_4.noarch.rpm
python3-ipaserver-4.11.0-15.0.1.el9_4.noarch.rpm
python3-ipatests-4.11.0-15.0.1.el9_4.noarch.rpm
aarch64:
ipa-client-4.11.0-15.0.1.el9_4.aarch64.rpm
ipa-client-common-4.11.0-15.0.1.el9_4.noarch.rpm
ipa-client-epn-4.11.0-15.0.1.el9_4.aarch64.rpm
ipa-client-samba-4.11.0-15.0.1.el9_4.aarch64.rpm
ipa-common-4.11.0-15.0.1.el9_4.noarch.rpm
ipa-selinux-4.11.0-15.0.1.el9_4.noarch.rpm
ipa-server-4.11.0-15.0.1.el9_4.aarch64.rpm
ipa-server-common-4.11.0-15.0.1.el9_4.noarch.rpm
ipa-server-dns-4.11.0-15.0.1.el9_4.noarch.rpm
ipa-server-trust-ad-4.11.0-15.0.1.el9_4.aarch64.rpm
python3-ipaclient-4.11.0-15.0.1.el9_4.noarch.rpm
python3-ipalib-4.11.0-15.0.1.el9_4.noarch.rpm
python3-ipaserver-4.11.0-15.0.1.el9_4.noarch.rpm
python3-ipatests-4.11.0-15.0.1.el9_4.noarch.rpm
SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//ipa-4.11.0-15.0.1.el9_4.src.rpm
Related CVEs:
CVE-2024-2698
CVE-2024-3183
Description of changes:
[4.11.0-15.0.1]
- Set IPAPLATFORM=rhel when build on Oracle Linux [Orabug: 29516674]
- Add bind to ipa-server-common Requires [Orabug: 36518596]
[4.11.0-15]
- Resolves: RHEL-32231 CVE-2024-3183 ipa: freeipa: user can obtain a hash of the passwords of all domain users and perform offline brute force
- Resolves: RHEL-31409 CVE-2024-2698 ipa: freeipa: delegation rules allow a proxy service to impersonate any user to access another target service
More information about the El-errata
mailing list